Researchers discover new vulnerabilities that affect millions of routers, IoT and OT devices from more than 150 vendors.
A warning was issued by researchers and the U.S. Cybersecurity Infrastructure Security Agency about several vulnerabilities affecting the TCP/IP stacks. Millions of internet-of-things devices and embedded systems are affected.
Security researchers called these vulnerabilities Amnesia:33, based on the number of issues found and the fact that they mostly affect the device’s memory. Four of them are critical and facilitate a wide range of attacks, like:
- remote code execution
- information leak
- denial of service
- memory corruption
Researchers have previously found other TCP/IP issues, with related vulnerability sets Ripple20 and Urgent/11. Amnesia:33 affects multiple TCP/IP stacks that are not owned by a single company, making these vulnerabilities hard to patch. For protection, experts recommend disabling or blocking IPv6 traffic when unnecessary, relying on internal DNS servers as much as possible, and monitoring network packages for corrupted packets.
Check the source.
- This Disney Plus Scam Is After Your Bank InfoA newly discovered Disney Plus scam is phishing for your banking information, using an e-mail with a very eye-catching … Read more
- ChatGPT Might Boost Phishing Scams In 2023, Experts WarnWhile AI’s immensely popular ChatGPT is a very useful tool for writers and creators worldwide, it might also help … Read more
- Devastating Ransomware Attack: Oakland Declares State of EmergencyIn the wake of a massive ransomware attack that left the city with no choice but to shut its … Read more
- H0lyGh0st Ransomware After Small and Midsize BusinessesMicrosoft has linked H0lyGh0st, a cyberthreat that emerged in June 2021 and targets small-to-midsized businesses, to North Korean state-sponsored … Read more
- Popular NFT Marketplace Ravaged by $540M Phishing SchemeIn March, a North Korean APT netted $540 million thanks to a massive phishing operation carried out on the … Read more